Critical.
Authoritative.
Strategic.
Subscribe to CIO Magazine »

The LoveBug worm: Ten years later

Today's threats now go beyond email as a way to find victims

Ten years ago today, on May 4, 2000, a security team with MessageLabs, a provider of messaging security services, came in to work and discovered the number of viruses its system had intercepted in the last several hours was off the charts.

"It was higher than it normally was in an entire day," recalls Paul Fletcher, part of that team and now chief software architect with Symantec Hosted Services, which later acquired MessageLabs. "That was our first indication that something was up."

What was up was the LoveBug. Millions of recipients around the world received an infected message from email contacts with the subject line "ILoveYou". Inside was a malicious attachment titled "LOVE-LETTER-FOR-YOU.TXT.vbs". The virus had the ability to overwrite other documents on a recipient's computer, such as jpg files. It sent itself to all of the recipients' email contacts, racking up approximately 45 million victims in just days.

Also see Why Some Classic Viruses May Come Back to Haunt a Corporate Network Near You

"We hadn't seen anything like it before," said Fletcher. "We didn't know we were going to stop that virus that day; no one even knew it existed."

The LoveBug virus was an old-style cyber-crime attempt, the kind done more for attention than for financial gain.

It was a notoriety type of virus, it wanted to be noticed. The LoveBug was more about vandalism than any serious crime "

But it set the stage for today's threat landscape, explained Fletcher. While today's attacks typically involve malware installation that hides on a computer in order to gain sensitive information, criminals often use sophisticated social engineering attacks to snare users, which is what the LoveBug did in 2000 when email was still early in its development into an important business tool.

"It was a very simply message. A very short message but it was very effective in terms of peaking the interest of the recipient," noted Fletcher. "Criminals started realizing the potential for email and the Internet as a means to conduct their criminal activities from. What you started to see after that was a spread of malware as a means to an ends of distributing other things; Trojans, malware, etc."

Today's threats now go beyond email as a way to find victims, said Fletcher. Attacks now use the web, as well, making it necessary not only to scan email, but web traffic.

"Now what we see are the blended threats," he said. "You'll receive an email that doesn't have anything in it, but in it has a link where you go somewhere and download malware. They come together to deliver the final payload."

Read more about data protection in CSOonline's Data Protection section.

Join the CIO Australia group on LinkedIn. The group is open to CIOs, IT Directors, COOs, CTOs and senior IT managers.

More about: etwork, MessageLabs, Symantec
References show all

Comments

Post new comment

The content of this field is kept private and will not be shown publicly.
Users posting comments agree to the CIO comments policy.
Login or register to link comments to your user profile, or you may also post a comment without being logged in.
Related Coverage
Related Whitepapers
Latest Stories
Community Comments
Tags: anniversaries, email, LoveBug, malware, security, viruses, worm
Latest Blog Posts
Whitepapers
  • Delivering Tomorrow's Backup and Recovery Infrastructure
    The data protection market has changed considerably over the past decade. During this time, the market witnessed a fundamental shift away from relying solely on tape for backup and recovery to using disk-based backup solutions to address challenges including backup performance, reliability, and recovery time objectives. This paper highlights that firms evaluating next-generation data protection solutions must expect a greater degree of integration between the technology components in today's data protection path.
    Learn more »
  • A Governance Guide for Hybrid SharePoint Migrations
    Cloud-based computing represents a powerful new option for managing enterprise content, offering increased flexibility, efficiency, and reduced cost for IT infrastructure, data storage, and applications. However, for a variety of business and technical reasons, most organisations will take a phased approach to adopting cloud-based services, which will require them to continue to maintain their on-premises SharePoint environments during the transition. This white paper, written by Chris Beckett from SharePoint Bits, discusses some of the benefits and risks of hybrid SharePoint deployments, and presents governance considerations that are essential for ensuring a successful migration.
    Learn more »
  • Removing BPM Silos to Unleash Process Power - 15 Best Practices for Enterprise BPM
    You are about to get a lot smarter about Enterprise Business Process Management (BPM ). T his article is the first in a series of our soon-to-be-published book, “The Intelligent Guide to Enterprise BPM .” So consider this first article your all-important primer.
    Learn more »
All whitepapers
rhs_login_lockGet exclusive access to Invitation only events CIO, reports & analysis.
Recent comments